package com.shuai.interceptor;


import com.shuai.constant.JwtClaimsConstant;
import com.shuai.constant.LoginTypeConstant;
import com.shuai.constant.PermissionConstant;
import com.shuai.context.BaseContext;
import com.shuai.context.LoginInfo;
import com.shuai.exception.PrivilegeNotAllowedException;
import com.shuai.mapper.UserMapper;
import com.shuai.properties.JwtProperties;
import com.shuai.utils.JwtUtil;
import io.jsonwebtoken.Claims;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

/**
 * jwt令牌校验的拦截器
 */
@Component
@Slf4j
public class ProjectPermissionInterceptor implements HandlerInterceptor {

    @Autowired
    private JwtProperties jwtProperties;

    @Autowired
    private UserMapper userMapper;

    /**
     * 项目管理授权
     * @param request
     * @param response
     * @param handler
     * @return
     * @throws Exception
     */
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {

        //判断当前拦截到的是Controller的方法还是其他资源
        if (!(handler instanceof HandlerMethod)) {
            //当前拦截到的不是动态方法，直接放行
            return true;
        }

        //2、校验权限
        try {
            Integer loginType =  BaseContext.getCurrentLoginInfo().getLoginType();
            Long id =  BaseContext.getCurrentLoginInfo().getId();
            //租户登录,直接拥有所有项目相关权限
            if (loginType == LoginTypeConstant.ENTERPRISE_LOGIN) {
                return true;
            }else {
                //个人登录，需要校验权限
                Integer permission =  userMapper.getById(id).getPermission();
                if (permission == PermissionConstant.ALL || permission == PermissionConstant.PROJECT) {
                    return true;
                }
                log.info("已拦截请求，{}",request);
                return false;
            }
        } catch (PrivilegeNotAllowedException ex) {
            //4、不通过，响应401状态码
            log.info("已拦截请求，{}",request);
            response.setStatus(401);
            response.getWriter().write("权限不足");
            return false;
        }
    }
}